Added the Hack in the Box GSEC version of the updated slides for our Thunderstrike 2 joint research with Trammell Hudson to the Research page. These slides disclosed that Apple was still vulnerable to CERT VU#552286 (which was made public at BlackHat in 2014.) The patch is forthcoming in OS X 10.11.1

Added the “BIOS Necromancy” whitepaper to the Research page, describing how the Apple vulnerability to something they didn’t think affected them came to be, and how this is actually a wider UEFI ecosystem issue which we know to affect other vendors’ codebases.